Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer
File: joN3gQz5wgS7ElhPPltfBQNoJG8.cer (raw, json)
Hash identifier: 8Rh3asirmYlBgZBjJK9zNf3mJLI4grnedNE1vADRHf4=
Subject key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0217E9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Nov 2024 17:29:46 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 58631
IP: 103.5.28.0/24
IP: 103.192.197.0/24
IP: 103.193.8.0/23
IP: 114.129.43.0/24
IP: 2001:df0:247::/48
IP: 2400:c760::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137193 (0x217e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 17:29:46 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b0:51:cb:18:97:6e:4e:80:23:c7:d2:0c:7b:
9b:aa:bc:dc:5e:d0:d2:52:9f:2e:10:20:6f:dc:6b:
65:ae:3e:74:3c:65:a1:0c:d7:a3:e5:57:13:d4:b7:
ab:1a:62:78:10:61:7a:73:05:ec:a0:54:f4:6c:df:
23:8f:a9:68:1f:b1:91:60:32:6f:38:77:c7:e2:c2:
17:e7:c1:5a:e3:36:62:91:07:38:26:37:57:50:56:
66:e5:a4:80:8e:18:5a:96:37:f5:1a:49:24:5e:ce:
ac:bf:89:03:6f:8a:a6:18:43:97:56:e2:71:f6:65:
00:b6:24:b6:97:64:38:7d:9a:1a:0d:9b:f8:0f:05:
ea:72:e9:60:34:bf:a8:42:12:b2:ae:12:15:48:d3:
37:1c:43:2b:04:f3:72:7c:97:7b:b1:a0:58:0d:a3:
98:fa:9e:c7:05:d9:b8:c4:6e:5b:85:e6:2b:1c:92:
98:c2:39:37:d5:a4:af:17:e8:39:e6:80:71:92:f7:
1c:d9:fb:99:6b:71:83:26:e6:25:c4:75:ad:73:98:
29:28:fe:54:37:c6:58:6e:f3:93:c2:3e:b8:2d:4d:
b0:56:db:0c:34:97:de:3c:f2:df:80:70:8a:cb:02:
7d:2a:52:7c:cd:06:e6:02:47:79:fb:29:c1:13:bf:
c0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58631
sbgp-ipAddrBlock: critical
IPv4:
103.5.28.0/24
103.192.197.0/24
103.193.8.0/23
114.129.43.0/24
IPv6:
2001:df0:247::/48
2400:c760::/32
Signature Algorithm: sha256WithRSAEncryption
56:ba:fd:93:20:b1:2d:7a:d7:58:6e:d6:48:25:f5:82:6a:86:
35:e2:a9:1f:e7:30:bf:ef:6d:bb:6c:b1:16:85:e8:2d:cf:ea:
18:50:0f:e5:d1:55:ea:5e:d7:bd:bb:bb:7d:dd:2c:cd:0d:0a:
3f:28:dd:36:04:68:c5:c0:29:91:f3:f8:69:5c:65:35:e9:ed:
e7:46:6f:84:2c:26:1a:89:ff:b8:b6:5f:4a:f6:1e:2a:6f:24:
88:6c:18:9e:1f:e8:b7:3a:e7:f6:3b:8d:45:eb:2e:d0:14:14:
bc:22:70:83:52:b0:48:27:f4:63:da:5e:8f:c0:70:c7:3f:5a:
94:18:94:25:61:df:c0:9c:00:c0:dd:88:a6:85:42:03:49:b1:
24:39:6c:bd:83:b6:2e:57:cf:13:0a:f5:7b:9d:bc:0f:86:b2:
06:da:22:8f:eb:7e:a6:f8:93:11:12:f6:42:80:47:3d:3b:02:
a6:a0:50:79:dc:c1:b7:87:7a:04:78:49:f0:63:6b:d2:5c:67:
43:e5:c5:0e:81:19:4b:3d:4b:95:53:e0:8e:fe:18:5e:88:07:
71:47:f4:4d:fe:06:d1:ec:43:ff:cd:04:d7:fc:85:01:56:8e:
d5:4f:59:44:d9:2c:ac:e9:0f:20:67:fd:7a:c7:53:20:96:4e:
b2:27:cb:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:03:11 2024 by rpki-client on console-ams.rpki-client.org